Heaventools Software

Publisher Information

Heaventools Software is a software publisher located in Vancouver, British Columbia in Canada*. Thre are 2 additional code signing certificates issued to this publisher.
Authority:
The USERTRUST Network

Valid from:
10/24/2007 7:30:00 PM

Valid to:
10/24/2009 7:29:59 PM

Subject:
CN=Heaventools Software, O=Heaventools Software, STREET=101-1001 West Broadway Dept. 381, L=Vancouver, S=BC, PostalCode=V6H4E4, C=CA

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
009f1730a374efea42ed0d1b504da8f981

Status:
Inconclusive detections from multiple engines

Scan engine
Details
Detections

Kaspersky
Trojan.MSIL.Zapchast, Trojan-Downloader.Win32.Dofoil, Trojan.Win32.Inject, UDS:DangerousObject.Multi.Generic, Backdoor.Win32.ZAccess
92.00%

ESET NOD32
Win32/Injector.AHVY (variant), Win32/TrojanDownloader.Zurgop.AW, Win32/Injector.AQUH (variant), Win32/Injector.AQMC (variant), Win32/Injector.AHKW (variant)
92.00%

AVG
Generic33, Win32/VBCrypt, Downloader.Generic13, Generic35, Inject, Crypt_s
92.00%

Panda Antivirus
Generic Malware, Trj/Dtcontx.E, Trj/Dtcontx.I, Suspicious file
92.00%

Fortinet FortiGate
W32/IRCBot.NIH!tr, W32/Injector.AIEE!tr, W32/Dofoil.AW!tr.dldr, W32/Inject.GNIU!tr, W32/Injector.AHFT, W32/VBINJECT.SM!tr
88.00%

McAfee
PWS-Zbot-FBCJ!E4A5737299CE, PWS-Zbot-FBCJ!8F8FBAE2E4AB, PWS-Zbot-FBCJ!2EB312D8B3DC, PWS-Zbot-FBCJ!2D8E8631B662, Artemis!556ABE432333, PWS-Zbot-FBCJ!B1108DA55C7F, Artemis!4032C13D2DA1, PWSZbot-FKS!A37C6B713E5E
88.00%

avast!
Win32:VBCrypt-CKY [Trj], Win32:VBInject-P [Trj], Win32:Dofoil-DT [Trj], Win32:Malware-gen, Win32:VBCrypt-CKE [Trj]
84.00%

Bitdefender
Gen:Variant.Symmi.22733, Gen:Variant.Symmi.22739, Trojan.Krypt.Q, Gen:Variant.Symmi.25110, Gen:Variant.Symmi.25021, Trojan.GenericKDV.1023144
84.00%

VIPRE Antivirus
Trojan.Win32.Ircbrute, Trojan.Win32.Generic, Backdoor.Win32.VBInject.c, Trojan-Downloader.Win32.Dofoil
84.00%

Emsisoft Anti-Malware
Gen:Variant.Symmi.22733, Gen:Variant.Symmi.22739, Trojan.Krypt.Q, Gen:Variant.Symmi.25110, Gen:Variant.Symmi.24976, Gen:Variant.Symmi.25021
84.00%

0 / 68
pexdll2.dll (PE Explorer by Heaventools Software)  (c8ac91155b5145a2e73aad62444656aa)

0 / 68

0 / 68

0 / 68
pexplorer22222.exe (PE Explorer by Heaventools Software)  (fa77b1b7ec45a236593baf7c4f39db95)

28 / 68    (Malware)
1347356016.exe (FlashFXP by OpenSight Software)  (d6a7e95246c87d2554ffd4d8bcc009f7)

5 / 68      (Malware)
1347170730.exe (FrostWire)  (a37c6b713e5e56e378d4f4b98e0a3b0e)

0 / 68

0 / 68

0 / 68
pexplorer.exe (PE Explorer by Heaventools Software)  (00b447ef3b7468c0764779bd53a75edc)

0 / 68

0 / 68

0 / 68
restuner.exe (Resource Tuner by Heaventools Software)  (6ad35856bda6f193674e51ebafc6f649)

0 / 68
flexhex_editor_setup.exe  (e2732f5feee301ef1ac5d1cb66bc552a)

2 / 68
3d4j95x.exe (Arsenica dastardi by Toshiyuki Masui)  (e4f04b1bdfee016b66944a2f090a6b66)

0 / 68
pong.exe (Win32 Cabinet Self-Extractor by Microsoft)  (a45442ea3fdabb69bbb0e839ac0bc342)

0 / 68
pexplorer.exe (PE Explorer by Heaventools Software)  (27b251c67de0fb3f37b50fed41bd6035)

0 / 68

0 / 68

0 / 68

16 / 68    (Malware)
q6dqajy.exe (Ungramma endothel by Toshiyuki Masui)  (e0d2f37b4cbbd6d4d9a877ab5ac23b96)

31 / 68    (Malware)
dos.exe (Ditetrah isothera by GreenMind Association ffff)  (bfb2ea9757387283110da35eace6ae2d)

0 / 68
afef.exe (Imperish rhabdosp by Hewlett-Packard Co)  (f848ae8f3e087633bde4fc6b12143b63)

0 / 68

36 / 68    (Malware)
dos.exe (Ditetrah isothera by GreenMind Association ffff)  (e9628dbc3086d2a7e3cf6d402c8b3a40)

14 / 68    (Malware)

33 / 68    (Malware)

39 / 68    (Malware)
dos.exe (Ditetrah isothera by GreenMind Association ffff)  (e18b0f10266731c98815c1841714e17a)

0 / 68
dos.exe (Ditetrah isothera by GreenMind Association ffff)  (328f50981b0b38eaf24a13d403041178)

34 / 68    (Malware)
dos.exe (Ditetrah isothera by GreenMind Association ffff)  (b6eda80725e30d41056e24eb998cd334)

35 / 68    (Malware)

 
Latest 30 of 250 files

Downloads URLs for files signed by Heaventools Software.

0 / 68
http://www.heaventools.com/.../pexsetup.exe  (efc2e46440a5f3e142c11353386db65d)

The certificates below are also signed by Heaventools Software.

00E8A9A729F96534B2FD04A356DAA2DEC5  (Oct 24, 2006 to Oct 25, 2007)

4BCB9C79C1B4B05F1AAD24259C80C4DD  (Oct 21, 2005 to Oct 22, 2006)

* Note, the details and description above are based on the code signing digital signature issued to Heaventools Software by The USERTRUST Network on October 24, 2007 with the serial number '009f1730a374efea42ed0d1b504da8f981'.